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REMARKS 

Claims 1-36 are pending in tills application. Claims 1, 21 and 29 are in 
Independent form. Claims 2-20 and 31 depend from dalm 1. claims 22-28 and 32 
depend from claim 21 and claim 30 depends from claim 29. Claims 31-36 are new. 

In the office action dated Septeml)er 9. 2005, the Examiner rejected claims 1.2, 
4-14, 17, 19. 21-24 and 26-30 under 35 U.S.C. § 102(a) as being unpatentable under 
the Sygate Personal Firewall Pro User Guide XP-002248366 (Sygate). Claim 3 was 
rejected under 35 U.S.C. § 103(a) as being unpatentable over Sygate and further in 
view of Vilhuber (U.S. Patent No. 6.748.543). Claims 16 and 18 were rejected under 35 
U.S.C. § 103(a) as being unpatentable over Sygate. Claim 20 was rejected under 35 
U.S.C. § 103(a) as being unpatentable over Sygate and further in view of Zhang et al. 
(U.S. Patent No. 6,490.289). Claim 25 was rejected under 35 U.S.C. § 103(a) as being 
unpatentable over Sygate and further In view of Chen (U.S. Patent Publication No. 
2003/0054860). Claim 15 was objected to as being dependent upon a rejected base 
claim but was found to include allowable subject matter. 

Sygate discloses a firewall that mns on a computer acting as a "bouncer" 
(Sygate at 1 1 ), monitoring traffic to and from the computer through the computers 
network connection. An application Is configured in the firewall such that it either has 
access to the network(s) the computer is attached to, or It does not On page 42 of 
Sygate, Sygate discloses for a firewall the access handling (e.g., allow, ask or block) for 
only a single communication connection (e.g, an internet connection). In contrast, claim 
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1 recites that a plurality of communication connections (e.g., a corporate LAN, the 
Internet) is involved for communicating with other devices. 

Still further, on page 57 of Sygate, Sygate may disclose what connection control 
information should exist on a computer level or a user level, but does not provide any 
disclosure of connection control Information on an application level. In contrast, claim 1 
recites that the connection control Infomnation Is on an application level (e.g., "the 
connection control infomiation including an association between the software 
application and one or more of the communication connections"). 

As an example, a connection request to one logical or physical connection may 
be penmitted for an application, but a second connection request to a different logical or 
physical connection may be denied, thereby preventing the application from sharing 
confidential information from an Intemal network with an external network. 

Claims 1 1 and 23 have been amended, and daim 35 has been added to further 
define a connection request, such that the connection request is a request for use of a 
network physical transport layer. Examples of physical transport layers that may be the 
subject of a connection request are recited in new claims 31 , 32 and 36 (e.g., USB, 
wireless networks), Sygate does not disclose a system and method of connection 
control wherein a connection request is a request for use of a particular physical 
transport layer. 

Furthermore with respect to claim 1 1 , the assignee respectfully disagrees with 
the Examiner's characterization of "installation." Sygate only discloses determining 
connection control infonnation associated with software applications on a system at the 
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time of installation of the Svoate firewall software (Sygate at 44). In contrast, claim 1 1 
recites deterrrilning connection control information associated with a software 
application at the time the software aoplication (which will be requesting access to one 
or more communication connections) is installed. 

Further, the "type" as referred to in claim 1 1 refers to the type of connection or 
connections that are pemnisslble for each software application, not the actual 
permission, Sygate may teach associating a permission with each of the software 
applications on the computer, but Sygate does not teach associating one or more 
connection types with the software application, whereby there may be a permission for 
access or not. 

Claim 33 has been newly added to further define the connection control 
Information to Include one or more connection types. 

In view of the above amendments and remarks, the assignee respectfully 
requests that the Examiner reconsider this application for allowance of claims 1-36. 
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Respectfully^b^tted, 
JONES DAY/ 




Date: December 15, 2005 



Jog^flh M. Sauer (Reg. No. 47,919) 
JoQCi Day 

Nordliyomt, 901 Lakeside Avenue 
Cleveland, Ohio 44114 
(216) 586-7506 
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